PCrisk.com
imtokew.vip favicon

imtokew[.]vip

Category: Phishing

Scanned: Apr 26, 2026, 02:44 PM UTC · First seen: Apr 26, 2026 · Threat Engines: 14 / 94 · Times Scanned: 1
5 / 100 Trust Score Based on scan findings at the time of analysis
Potentially Dangerous
0 - High Risk50 - Moderate100 - No Threats
Fresh scan recommended
Last scanned 16 days ago - security status may have changed since then.
Not scanned has not been scanned yet. Hit Scan Now to check it.

Scans can take up to 5 minutes to complete. Please keep this tab open - we'll redirect you to the report when it's ready.

Failed
Scan unavailable
Scan failed
Protect yourself from potentially harmful websites
Combo Cleaner's real-time web protection module actively blocks access to scam, phishing & malware-infected websites.
★★★★★ 4.8 / 5 Recommended by PCrisk.com editors Windows · Mac · Android · iOS
Download Combo Cleaner Free scan · no signup

To use full-featured product, you have to purchase a license for Combo Cleaner. Limited seven days free trial available. Combo Cleaner is owned and operated by RCS LT, the parent company of PCRisk.com.

Screenshot of imtokew[.]vip Captured Apr 26, 2026
https://imtokew[.]vip
Screenshot of imtokew.vip
This website has been flagged as potentially harmful
Screenshot blurred for safety. Multiple security engines flagged potential threats at the time of scanning.
1 month
Not Ranked - This website does not appear in the Tranco top list
Flagged by 14 of 94 engines
✓ Valid (TLS)
AWS EC2 (us-west-2)
Portland, United States
Unknown
Unknown
52.37.165.222
Domain & WHOIS Information
Registrar Dynadot Inc
Registered April 1, 2026
Expires April 1, 2027
Name Servers ns1.dyna-ns.net
DNSSEC Unsigned
Hosting AWS EC2 (us-west-2)
Reputation & Threat Check 94 security engines checked
14
14 of 94 engines flagged this website Flagged by 14 security vendors at the time of scanning
Not flagged Flagged
Flagged by 14 of 94 engines
Direct Threat Database Sources
Google Not listed Spamhaus DBL Not listed SURBL Listed Spamhaus ZEN Not listed Barracuda Not listed SpamCop Not listed QBMA Not listed
View detailed engine results on VirusTotal
File Scan Summary Powered by Quttera Engine
6 files scanned
No threats
5
Low Risk
0
Medium Risk
0
High Risk
1
No threats Low Risk Medium Risk High Risk
imtokew.vip/# 22.0 KB Flagged: high risk
imtokew.vip/assets/%60%2Bi%2B%60 4.0 KB No threats
imtokew.vip/assets/index-CuWpWA9q.css 11.9 KB No threats
imtokew.vip/assets/%24%7Bt%7D 4.0 KB No threats
imtokew.vip/assets/index-CQWUlmno.js 300.6 KB No threats
public.readdy.ai/analysis/event-reporting.min.js 7.4 KB No threats
Quttera flagged high risk files - is this your website?
Investigate and remove potential threats with Quttera
Remove Malware

Quttera Web Malware Removal is a paid subscription service. Pricing, plans, and trial availability are set by Quttera. Quttera is operated by Quttera Ltd, an independent third-party company unrelated to RCS LT. PCRisk.com may earn a referral commission when users sign up through this link.

External Links & Domains
52
External Links
1 Flagged
0
Iframes
Clean
21
Referenced Domains
1 Flagged
2
Flagged Resources
Detected
walletconnect.comFlagged: Generic Malicious Object
https://walletconnect.com/Flagged: Generic Malicious Object
https://walletconnect.com/Flagged: Generic Malicious Object
http://imtokew.vip/${t}Not flagged
http://imtokew.vip/`+i+`Not flagged
http://imtokew.vip/assets/index-CQWUlmno.jsNot flagged
http://imtokew.vip/assets/index-CuWpWA9q.cssNot flagged
https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.0/css/all.min.cssNot flagged
https://cdnjs.cloudflare.com/ajax/libs/remixicon/4.5.0/remixicon.min.cssNot flagged
https://cosmos.networkNot flagged
https://discord.com/invite/imTokenNot flagged
https://entethalliance.orgNot flagged
https://etherscan.ioNot flagged
https://fonts.googleapis.comNot flagged
https://fonts.googleapis.com/css2?family%3DInter:wght@400%3B500%3B600%3B700&amp%3Bdisplay%3DswapNot flagged
https://fonts.gstatic.comNot flagged
https://github.com/consenlabsNot flagged
Show 37 more...
walletconnect.comFlagged: Generic Malicious Object
cdnjs.cloudflare.comNot flagged
cosmos.networkNot flagged
discord.comNot flagged
entethalliance.orgNot flagged
etherscan.ioNot flagged
fonts.googleapis.comNot flagged
fonts.gstatic.comNot flagged
github.comNot flagged
imtokew.vipNot flagged
medium.comNot flagged
new.consensys.netNot flagged
polkadot.networkNot flagged
public.readdy.aiNot flagged
slowmist.comNot flagged
Show 6 more...
imtokew[.]vip Overview

Description of imtokew[.]vip

The website appears to present itself as imToken, a cryptocurrency wallet platform focused on Ethereum, Bitcoin, and broader Web3/DeFi asset management. Based on the page title, meta description, and screenshot, it claims to offer non-custodial wallet services, token storage, swapping, staking, and multi-chain support for digital assets such as BTC, ETH, TRX, BNB, and TON.

However, the scanned domain is imtokew[.]vip, which does not match the brand name shown on the page and may be attempting to resemble the legitimate imToken brand. The site appears to be operated through a recently registered standalone domain rather than an obviously established official brand domain, which is a relevant context point when assessing a crypto-related service that asks users to trust wallet software or connect digital assets.

Safety Assessment for imtokew[.]vip

This domain was flagged by 14 out of 94 security engines at the time of the scan, with multiple detections indicating phishing or malicious behavior. In addition, the malware scan reported a malicious result and identified one flagged page element. The domain is also extremely new, with a registration age of only 24 days, and it has no meaningful popularity ranking, both of which can be risk indicators for short-lived phishing infrastructure.

The page content closely resembles the imToken cryptocurrency wallet brand, but the domain name imtokew[.]vip differs from the expected brand spelling and may be a look-alike intended to mislead visitors. In cryptocurrency contexts, this kind of brand resemblance can be especially concerning because users may be prompted to connect wallets, enter seed phrases, or download software. Although one blacklist source reported the domain as clean and some databases had not yet listed it, fresh phishing pages are not always broadly indexed immediately.

Based on these findings, this website may pose potential risks to visitors.

Technical Description

The site uses a valid Let's Encrypt TLS certificate, which indicates encrypted HTTPS transport was available at the time of the scan, but a valid certificate alone does not establish legitimacy. The domain is hosted on AWS EC2 in the us-west-2 region using IP address 52.37.165.222, with Dynadot nameservers and DNSSEC reported as unsigned.

From an infrastructure perspective, the combination of a very recently created domain, generic cloud hosting, unsigned DNSSEC, and a short-lived certificate profile is consistent with low-friction deployment. The malware scan also reported a flagged object associated with page content referencing walletconnect.com, which may indicate suspicious use of wallet-connection functionality or abuse of recognizable crypto-related components at the time of analysis.

HTTP Redirect Chain
No redirects detected - direct connection to destination
Website Insights
Not Ranked
Tranco Rank
Not in Top 1M
Visitors Unknown
Category: Phishing
Rank History (30 days)
No rank data available
No cookies data available
Dispute This Score For website owners
Believe this score is inaccurate?
If you are the website owner and believe the scan results contain errors or false positives, you can submit a dispute for manual review. Our team typically responds within 1-2 business days.
You will be asked to verify your email before the dispute can be processed.
By submitting this form, you confirm that the information provided is accurate. Disputes are reviewed manually and results may take up to 48 hours to update.
One more step..
To submit your dispute for imtokew[.]vip, please click the verification link we just emailed you. Once verified, we'll review it within 1–2 business days.
This report was generated automatically and is provided for informational purposes only. Results are based on a point-in-time scan and may contain false positives or incomplete data. This does not constitute a security audit or certification. No vendor in the market can guarantee a 100% detection rate. If you believe this report is inaccurate, please submit a dispute.
Similar Recently Scanned
cantrail.com screenshot
cantrail[.]com
Potentially Dangerous 5/100
youareanidiot.org screenshot
youareanidiot[.]org
Potentially Dangerous 5/100
typeform.com screenshot
typeform.com
No Threats Found 91/100
twpaycards.fi screenshot
twpaycards[.]fi
Potentially Dangerous 5/100
ateesafinancialstewards.com screenshot
ateesafinancialstewards[.]com
Potentially Suspicious 34/100
qledgerx.com screenshot
qledgerx[.]com
Potentially Suspicious 24/100
weabridege.online screenshot
weabridege[.]online
Moderate Risk 42/100
nexfengrowth.com screenshot
nexfengrowth[.]com
Potentially Dangerous 18/100

Share your experience with this website. Was it safe? Did you encounter any issues?